We are committed to maintaining the privacy and confidentiality of our customers’ personal information. In the course of offering and your access of the financial products and services, we may collect, receive, or maintain personal information about you. This information can come from information you provide on applications or other forms, through your inquiries by mail, e- mail, or telephone, or by other means.
This policy explains what personal information we collect and how we use and share such personal information. It also explains what you can do to limit the use and sharing of your personal information. We do not disclose personal information about our customers to non- affiliated third parties, except as described below.
M1 may periodically collect information from you through automated means. When you browse our site, use the iOS and Android applications, use our services, or read our emails or newsletters, we may use “cookies” or other online tracking technologies (including pixel tags, web beacons, clear GIFs and device fingerprints) in order to provide better service, facilitate your use of the site or services, store online preferences, track usage of the site or services, tailor the marketing of business services, or enhance security. M1 does not store login credentials used to link Account information.
Some of our cookies are used for web analytics and intelligence about our website. We may also use web beacons or other technologies for similar purposes and we may include these in marketing email messages or our newsletters in order to determine whether messages have been opened and links have been clicked on. Web beacons do not place information on your device but may work in conjunction with cookies to monitor online activity.
By using our site or applications you agree that we can place cookies on your device and use other online tracking mechanisms as explained in this privacy notice. You may be able to control your acceptance of cookies and similar technologies on a website, and most devices and browsers offer their own privacy settings for cookies. You will need to manage your cookie settings for each device and browser you use. If you do not accept cookies, you may experience some inconvenience in your use of some sites and online products. For example, a website may not be able to recognize your device and you may need to answer challenge questions or provide additional information each time you log on.
To help us prevent fraud, protect the safety and security of our users, provide our services to you, and improve our services, we collect location data, including current and historical information concerning a user’s geographic location, GPS location, transaction location, and IP addresses that are used in conjunction with our services. We collect your precise location data with your permission, and use that information, for example, to help protect against fraud by detecting and declining debit card transactions that may occur far away from your device’s location. You may decline to allow us to collect such geolocational information, in which case M1 may not be able to provide certain features or functionalities to you.
We also may obtain information on the mobile device you use, including the Universally Unique Identifier, advertising identifier (“IDFA” or “AdID”), operating system and version, wireless carrier, and network type. This information may be used to identify system issues and for marketing purposes.
If you subscribe to any of our electronic newsletters, we will use your name and email address to send the newsletter to you. You can unsubscribe at any time following the instructions at the bottom of these electronic newsletters or you can contact us at the information below. We also may collect information from you derived or resulting from voluntary surveys.
By providing your phone number you expressly consent to M1 and/or its agents calling or texting you using an automated telephone dialing system and/or prerecorded messages, even if you incur charges for receiving such communications. You may request to be removed from phone or text communications by emailing firstname.lastname@example.org or informing the agent that contacts you.
With your permission, we may access your contact list on your mobile device or in your email accounts so that you can identify your contacts using our services and direct the invitation of your contacts for our services. We store and use this information to suggest referrals or connections and for other reasons related to our services.
We may use third-party analytics services (for example, we use Google Analytics, Facebook, and others) to evaluate your use of the platform, compile reports on activity, analyze performance metrics, and collect and evaluate other information relating to the platform and mobile and internet usage. For more information on these third parties, including how to opt out of certain data collection, please visit www.google.com/analytics. Please be advised that if you opt out of any of these services, you may not be able to use the full functionality of the platform. Additionally, all browsing information is collected in the aggregate, de-identified and anonymized.
Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. At this time, we do not recognize or respond to DNT signals.
With regard to our internal security procedures, we restrict access to your personal and account information to those employees who “need to know” the information in order to provide products and services to you. We maintain reasonable physical, administrative, and technical safeguards to protect your personal information. We conduct regular internal audits of our business practices and procedures in order to protect your personal information.
We may also disclose your personal information as required by law, such as to comply with a subpoena, or similar legal process and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
Third Party Services
If you choose to apply for a Personal Loan or High-Yield Savings Account with M1, you understand that we partner with B2 Bank National Association (B2 Bank, N.A.) and you agree to comply with B2 Bank, N.A.’s Privacy Notice, also attached as Exhibit A below.
Retention of Your Information
Information connected to you that is no longer necessary and relevant to provide our services may be aggregated with other non-personal data to provide insights which are commercially valuable to M1, such as statistics of the use of M1 Services.
We do not knowingly collect or solicit any information from anyone under the age of 18 on our services. In the event that we learn that we have inadvertently collected personal information from a child under age 18, we will not allow the user to continue using our services and we will take reasonable steps to delete this information. If you believe that we might have any information from a child under 18, please contact us at email@example.com.
California Privacy Rights
If you are a California resident, California law requires us to provide you with some additional information regarding how we collect, use and share your “personal information” (as defined in the California Consumer Privacy Act (“CCPA”)), other than the personal information we collect in connection with providing financial products and services. The CCPA, however, does not apply to all M1 entities.
Depending on how you interact with our website and services, we may collect the following categories of personal information about you, in addition to the information we collect in connection with providing financial products and services:
- Identifiers, such as your name and contact information, IP address, and mobile device identifiers
- Internet usage information, such as browsing history, access history, and use and interaction with our website.
Your California Privacy Rights
If you are a California resident, you may have certain rights. Subject to certain limitations and exceptions, California law may permit you to request that we:
- Provide you the categories of personal information we have collected or disclosed about you in the last twelve months; the categories of sources of such information; the business or commercial purpose for collecting or distributing your personal information; and the categories of third parties with whom we shared personal information.
- Provide access to and/or a copy of certain information we hold about you.
- Delete certain information we may have about you.
California law permits consumers to request, once per year, that we disclose the identity of any third parties with whom we have shared personal information for the third parties’ direct marketing purposes within the previous calendar year, along with the type of personal information disclosed. Please contact firstname.lastname@example.org for such requests.
Updates to This Policy
For questions about our policy, or for additional copies of this notice, please email us at email@example.com.
|Facts||What does M1 do with your personal information?|
|Why?||Financial companies choose how they share your personal information. Federal law gives consumers the right to limit some but not all sharing. Federal law requires us to tell you how we collect, share, and protect your personal information. Please read this notice carefully to understand what we do.|
|What?||The types of personal information we collect and share depend on the product or service you have with us. This information can include: Social Security Number and income Account balances and transaction history Investment experience and checking account information When you are no longer our customers, we continue to share your information as described in this notice.|
|How?||All financial companies need to share customers’ personal information to run their everyday business. In the section below, we list the reasons financial companies can share their customers’ personal information; the reason M1 chooses to share; and whether you can limit this sharing.|
|Reasons we can share your personal information||Does M1 share?||Can you limit this sharing?|
|For our everyday business purposes – such as to process your transactions, maintain your account(s), respond to court orders and legal investigations, or report to credit bureaus||YES||NO|
|For our marketing purposes – To offer our products and services to you||YES||NO|
|For joint marketing with other financial companies||NO||We Don’t Share|
|For our affiliates everyday business purposes – information about your transactions and experiences||YES||NO|
|For our affiliates’ everyday business purposes – information about your creditworthiness||YES||NO|
|For our affiliates to market to you||YES||YES|
|For nonaffiliates to market to you||NO||We Don’t Share|
|To Limit Our Sharing||Email us at firstname.lastname@example.org. Please note: If you are a new customer, we can begin sharing your information 30 days from the date we sent this notice. When you are no longer our customer, we continue to share your information as described in this notice. However, you can contact us at any time to limit our sharing.|
|Questions?||Email us at email@example.com.|
|Who we are|
|Who is providing this notice?||M1 Holdings Inc. (also “M1”) and its affiliates. See list of affiliates below.|
|What we do|
|How does M1 collect my personal information?||We collect your personal information, for example, when you: |
– Open an account or give us your income information,
– Seek information about your investment or retirement portfolio,
– Make deposits or withdrawals from your account.
We also collect your personal information from others, such as credit bureaus, affiliates, or other companies.
|How does M1 protect my personal information?||To protect your personal information from unauthorized access and use, we use security measures that comply with federal law. These measures include computer safeguards and secured files and buildings.|
|Why can’t I limit all sharing?||Federal law gives you the right to limit only: |
– Sharing for affiliates’ everyday business purposes – information about your creditworthiness
– Affiliates from using your information to market to you.
State laws and individual companies may give you additional rights to limit sharing. See below for more on your rights under certain state laws.
|What happens when I limit sharing for an account I hold jointly with someone else?||Your choices will apply to everyone on your account.|
|Affiliates||Companies related by common ownership or control. They can be financial and nonfinancial companies. Our affiliates include companies with a M1 name; financial companies such as M1 Finance LLC and M1 Advisory Services LLC; nonfinancial companies such as M1 Holdings Inc., M1 Digital LLC, and M1 Spend LLC.|
|Nonaffiliates||Companies not related by common ownership or control. They can be financial and nonfinancial companies. M1 does not share with nonaffiliates so they can market to you.|
|Joint Marketing||A formal agreement between nonaffiliated financial companies that together market financial products or services to you. M1 doesn’t jointly market.|
|Other Important Information|
|State and International Laws For Vermont Residents: In accordance with Vermont Laws, we will not share information we collect about Vermont residents with companies who are not affiliates, except as permitted by law, such as with your consent or to service your accounts. We will not share information about your creditworthiness with our affiliates without your authorization or consent, but we may share information about our transactions or experiences with you with our affiliates without your consent. For Nevada Residents: Nevada law requires us to disclose that you may request to be placed on M1’s internal “do not call” list at any time by calling (312) 600-2883, and that we are providing this notice to you pursuant to state law, and that you may obtain further information by contacting the Nevada Attorney General, 555 E. Washington Ave., Suite 3900, Las Vegas, NV 89101; phone 702-486-3132; email BCPINFO@ag.state.nv.us. For California Residents: In accordance with California law, we will not share information we collect about you with nonaffiliates, except as allowed by law. For example, we may share information with your consent or to service your accounts. Among our affiliates, we will limit information sharing to the extent required by California law.|
WHAT DOES B2 BANK NATIONAL ASSOCIATION FACTS DO WITH YOUR PERSONAL INFORMATION?
Version: November 2022
|Why?||Financial companies choose how they share your personal information. Federal law gives consumers the right to limit some but not all sharing. Federal law also requires us to tell you how we collect, share, and protect your personal information. Please read this notice carefully to understand what we do.|
|What?||The types of personal information we collect and share depend on the product or service you have with us. This information can include: |
Social Security number and Information from applications, such as your income Account Balances and Payment History Transaction History and Credit Scores When you are no longer our customer, we continue to share your information as described in this notice.
|How?||All financial companies need to share customers’ personal information to run their everyday business. In the section below, we list the reasons financial companies can share their customers’ personal information; the reasons B2 Bank chooses to share; and whether you can limit this sharing.|
|Reasons we can share your personal information||Does B2 Bank Share?||Can you limit this sharing?|
|For our everyday business purposes— such as to process your transactions, maintain your account(s), respond to court orders and legal investigations, or report to credit bureaus||Yes||No|
|For our marketing purposes— to offer our products and services to you||Yes||No|
|For joint marketing with other financial companies||Yes||No|
|For our affiliates’ everyday business purposes— information about your transactions and experiences||Yes||No|
|For our affiliates’ everyday business purposes— information about your creditworthiness||Yes||No|
|For nonaffiliates to market to you||No||No|
|Questions? Email: firstname.lastname@example.org or go to http://www.b2.bank/M1-Privacy|
|Who we are|
|Who is providing this notice?||B2 Bank National Association|
|What we do|
|How does B2 Bank protect my personal information?||To protect your personal information from unauthorized access and use, we use security measures that comply with federal law. These measures include computer safeguards and secured files and buildings.|
|How does B2 Bank collect my personal information?||We collect your personal information, for example, when you |
– Open an account or Provide your mortgage information
– Apply for a loan or Make a wire transfer
– Make deposit or withdrawal from your account
We also collect your personal information from others, such as credit bureaus, affiliates, or other companies.
|Why can’t I limit all sharing?||Federal law gives you the right to limit only |
– sharing for affiliates’ everyday business purposes—information about your creditworthiness
– affiliates from using your information to market to you
– sharing for nonaffiliates to market to you
State laws and individual companies may give you additional rights to limit sharing.
|Affiliates||Companies related by common ownership or control. They can be financial and nonfinancial companies. |
– B2 Bank does share with our affiliates M1
|Nonaffiliates||Companies not related by common ownership or control. They can be financial and nonfinancial companies. B2 Bank does not share with nonaffiliates so they can market to you-|
|Joint marketing||A formal agreement between nonaffiliated financial companies that together market financial products or services to you. |
– B2 Bank does not jointly market with nonaffiliates.